AN DrayTek - DMZ - ISP router

Similar documents
Please note, instructions in this guide are based on a PC running Windows 7. Please adapt the actions to suit your operating system.

The Billion 8800NL R2 - All-In-One Bridge modem solution for the UK For use with a dedicated firewall

AC1200M/MS. User Manual

2Wire IG 2700 ADSL Router. RJ45 connecting cable

TCP/IP CONFIGURATION 3-6

Conceptronic C100BRS4H Quick Installation Guide. Congratulations on the purchase of your Conceptronic 4-ports Broadband Router.

2) INSERT THE SETUP CD

Networking Fundamentals. An Introduction to Networks. tel: +44 (0) fax: +44 (0) web:

F.A.Q for TW100-S4W1CA

D-Link DSL-3782 Router. Introduction. This router will run TT own firmware, you cannot load the D-Link firmware.

User Manual DIR-850L. Wireless AC1200 Dual Band Gigabit Router.

CHAPTER 7 ADVANCED ADMINISTRATION PC

BiPAC 7202 series. Quick Install Guide

Multi-Homing Broadband Router. User Manual

WIRELESS ROUTER N150. User Manual. F9K1009v1 8820zb01125 Rev.B00

LevelOne FBR User s Manual. 1W, 4L 10/100 Mbps ADSL Router. Ver

DSL/CABLE ROUTER with PRINT SERVER

IP806GA/GB Wireless ADSL Router

WHG201 V1.00. Secure WLAN Controller

MAC Address Filtering Setup (3G18Wn)

Multi-site Configuration and Installation Guide Port Forwarding Option

Content 1 OVERVIEW HARDWARE DESCRIPTION HARDWARE INSTALLATION PC CONFIGURATION GUIDE... 5 WEB-BASED MANAGEMENT GUIDE...

Broadband Router. User s Manual

WHG405 V2.10. Secure WLAN Controller

IpAlarm Module Set Up

RX3041. User's Manual

Atrie DB108-E ADSL MODEM. User Manual V1.1

Configuring a BELKIN Router. Basic Configuration Steps

WISP Setup Guide for TP-Link TL-WR841N 300 Mbps Wireless N Router AARP Foundation Tax-Aide Colorado Technology Specialist

The VWRT510&WRT500 High Speed Router User s Guide

SoHo 401 VPN. Shared Broadband Internet Access VPN Gateway 3-Port Switching Hub, DMZ Port. Quick Install Guide

Security SSID Selection: Broadcast SSID:

MIMO Wireless Broadband Route r User s Manual 1

TWO Internet Set-up Instructions

NETCOMM GATEWAY SERIES Dual ADSL2+ / 3G Wireless N Gateway. 3G29WN2 Quick Start Guide

Wireless Broadband Router

DSL-G624T. Wireless ADSL Router. If any of the above items is missing, please contact your reseller. This product can be set up using any

HSPA+ WiFi Router with Voice

Port Forwarding or Network Address Translation (NAT) Introduction

LevelOne Broadband Routers

UIP1869V User Interface Guide

Connecting the DI-804V Broadband Router to your network

802.11n Wireless. ADSL 2/2+ Router ADN Quick Installation Guide

Setting up ADSL2MUE 2.18-AU firmware for Bridge Mode

Wireless b/g/n 150Mbps AP Router

IpAlarm Module Set Up VirtuAlarm model

BiPAC 7300 series. Quick Install Guide

Introduction... 3 Features... 3 Minimum Requirements... 3 Package Content... 3 Note... 3 Get to know the Broadband Router... 4 Back Panel...

R520 Quick Setup Guide

Broadband High-Speed DSL Modem User Manual

Broadband Router DC 202

1. Press "Speed Test" to find out your actual uplink and downlink speed.

AC1200 WiFi Router User Manual

Oct Wi-Fi Concierge Web Portal User Guide - English

Please take the time now to check the contents of your package: HPS12U Print Server One CD-ROM Quick Installation Guide One power adapter

Table of Contents. CRA-200 Analog Telephone Adapter 2 x Ethernet Port + 2 x VoIP Line. Quick Installation Guide. CRA-200 Quick Installation Guide

Setup Guide for Hard-Wire Ethernet Connected TP-Link TL-WR841N 300 Mbps Wireless N Router AARP Foundation Tax-Aide Colorado Technology Specialist

LEGUANG N900 Wireless Router Configuration Guide

Port Forwarding. Introduction. Port forwarding can be a very complex topic.

Notice according to GNU/GPL-Version 2

UNIBOX. Hotspot Management Application. Quick Start Guide

Set-up for a Netgear DG834G (802.11b & g) ADSL Router with the Adpro FastTrace

Quick Installation Guide DSL-2650U/NRU. 3G/ADSL/Ethernet Router with Wi-Fi and Built-in Switch

2Wire IG 2700 ADSL Router. RJ45 connecting cable

WIRELESS N300 ADSL2+/VDSL2 MODEM ROUTER DSL-G225 QUICK INSTALLATION GUIDE

300M Wireless-N Broadband Router User Manual

Port Forwarding & Case Study

Introduction... 3 Features... 3 Minimum Requirements... 3 Package Content... 3 Note... 3 Get to know the Broadband Router... 4 Back Panel...

Vigor2900 Series Broadband Security Router Highly integrated broadband security router, combining high-speed routing technology with a comprehensive

2. The next screen will tell you to press the lighted Cisco logo on the Router. After you have pressed the logo, click the Next button to continue.

Port Forwarding & Case Study

WL5041 Router User Manual

Billion BiPAC 7700NR2. Setup Guide

LevelOne FBR-1405TX. User s Manual. 1-PORT BROADBAND ROUTER W/4 LAN Port

3GWIFIMRD. 3.5G plus WLAN Desktop Server Router. Quick Setup Guide. 1 Version 1.0

Port Forwarding or Network Address Translation (NAT) Introduction

LevelOne WBR User s Manual. 11g Wireless ADSL VPN Router. Ver

BiPAC 8500/8520/8501. Quick Install Guide

Ayrstone AyrMesh Router Setup

ADSL User Manual. Wireless-N BROADBAND ROUTER : Introduction

Quick Installation Manual

IPS-2101h. Quick Installation Guide V1.0

I-Fly Wireless Broadband Router

CHAPTER 1. Welcome to Grand IP Camera III

User Manual. AC ac Wireless Access Point/Router. Model WAC124. NETGEAR, Inc.

IP806GA/GB Wireless ADSL Router

WHG711 V3.20. Secure WLAN Controller

Installation with a DSL Connection.

CE APPROVED.4 INTRODUCTION.5 PACKAGE CONTENTS. 6 PRE - INSTALLATION CHECKLIST. 6 SYSTEM REQUIREMENTS. 6 FEATURES AND BENEFITS.11 SETUP WIZARD.

AP699GEC2.FW97-5 Router. User Manual

Orbi WiFi System User Manual

DRG600-WIFI USER GUIDE

BiPAC 6404VP/VGP. VoIP/(802.11g) Broadband Firewall Router. Quick Start Guide

Shaw Business Hitron Modem (CGNM-2250) Configuration User Guide

Wireless 300N 3G quick install

BEC 8920AC Ultimum The Ultimate Residential Gateway with ac VDSL2/ADSL2+/Bonded/FTTH Quick Start Guide

Nighthawk X6S AC3000 Tri-Band WiFi Router User Manual

ZyWALL 10W. Internet Security Gateway. Quick Start Guide Version 3.62 December 2003

Wireless Printing Updated 10/30/2008 POLICY. The use of Wireless Networking is not permitted at any site for full client/server networking of Taxwise.

Network Configuration

Transcription:

Application Note:- To configure a DrayTek 2860 router to function behind a Sky router which is providing broadband internet access. The connection between the two routers is configured as a DMZ. Application Note Reference: AN140001-DrayTek - DMZ - ISP router Produced by: Tony Prout - IP Product Manager, Habitech E-mail: tony.prout@habitech.co.uk Tel: 01420 540054 Document written: 17 th June 2014

This application note describes introducing and using a DrayTek router as a secondary router, allowing the primary router, provided by the ISP (Internet Service Provider) to remain as the internet gateway (sometimes referred to as modem mode ), typically monitored and supported by the ISP. This configuration is also known as a DMZ (an internet term, Demilitarised Zone) configuration. As we move from broadband internet connectivity environments which simply supported one or two home PCs, to an era of upsurge in IP attached devices (PCs, laptops, printers, tablets, mobile phones, televisions, video and audio devices, NAS, CCTV, remote and intelligent Wi-Fi access points, control devices, and many more), complex router configurations and complex in-house network connectivity are becoming more the norm. Relying on an ISP for the router element is no longer ideal. ISPs include; Virgin Media, Sky, BT, TalkTalk, PlusNet, and many others. Introducing this primary, secondary two router method would typically be where the end environment requires a more complex router configuration or features than that provided by the ISP s router, the ISP s router may not be capable or support some of the more complex requirements. In this dual router method the ISP s router is reduced to little more than providing an ISP monitored and managed device offering a gateway to the internet via a wide area circuit, typically broadband or cable. The benefits of using this two router method include; ISPs may not permit (as a condition of their service and support), and/or may charge for, none standard or complex configurations on their standard routers. ISPs may use methods such as MAC Encapsulated Routing to tie their router to the provided circuit, such that an alternate router cannot directly be used in place. Many of the more basic routers provided by ISPs, each competing in a busy cost and price driven market, are limited in terms of capacity or processing power for the features such as firewalling they offer, resulting in reducing upload/download speed. Wi-Fi capability of ISPs standard routers may also be limited in other than basic configurations. Moving between ISPs. With competing ISPs constantly offering new features, greater speeds and more competitive pricing. Changing ISP is a simpler exercise if the ISP is simply providing internet access and DMZ to a second router which provides the actual complex local configuration. Those installing, configuring and subsequently monitoring and maintaining these systems need immediate, secure and often remote access to the router configurations and the components they support inbound of the router. Which form a key part of the services they provide. A DMZ is introduced between the primary and secondary routers, allowing the ISP s router to pass data packets to, and receive data packets from the secondary (DrayTek in this case) router, the DrayTek router now assumes functions previously performed by the ISP router, functions such as firewall, and communicating with the devices on the local network, either wired or wireless. This application note assumes that an existing, proven, stable ISP router and internet connection exists. This application note is a guide for individuals who are conversant with internet access elements such as routers, cables and IP addresses. This application note is not written for first time users. Page 2 of 14

Connect laptop (with appropriately configured Ethernet adapter, i.e. set to obtain IP address automatically ) using RJ45 cable to a LAN port on the 2860 router. A DrayTek v2860 ADSL/VDSL/3G Router, Code: DRA-V2860 is used in this application note. The 2860 can be accessed via its default IP address, 192.168.1.1, entered in the laptop s browser (for example: Internet Explorer) This will produce the DrayTek Login panel (below), the default Username and default Password are both admin (lower case). Login, will produce the Dashboard, a starting panel for all activities on the 2860. In this example, the laptop is connected to LAN (port) 6 in the router, port 6 shows lighted/green on areas of the dashboard display. Top left of the dashboard is a dropdown which is default Auto Logout, this can be changed to Off, 1 min, 3 min etc. which can assist in not being logged out part way through a sequence of commands. Page 3 of 14

STEP ONE CONFIGURE 2860 WAN PORT TO NETWORK OF ISP ROUTER This example assumes the ISP LAN is IP network 192.168.0.1/24, which is the Sky default (each ISP has their default IP settings). The 2860 has four WAN ports, WAN1 is ADSL/VDSL, WAN2 is Ethernet, WAN3 and WAN4 are USB. The 2860 is to be connected to the ISP router using RJ45, from 2860 port WAN2 (Ethernet), thus 2860 WAN2 needs to obtain an address in the ISP LAN 192.168.0.1/24. Choose WAN in the list in the vertical bar on the left side of the Dashboard, and then choose Internet Access from the options. From the panel now within the main area of the display, select WAN2 (the port to be used in this configuration), and from the drop down options, select Static or Dynamic IP. The WAN2 Details Page button will now become highlighted. Select this, (the WAN2 Details Page button). This produces the panel which follows. Page 4 of 14

Highlight Enable, highlight Obtain IP Address Automatically, and enter Router Name (IP of ISP s router, 192.168.0.1 in this instance). Select OK. The DrayTek should soon acquire an IP address (from the ISP router s DHCP range) on WAN2. As shown in the screen shot below. In this example 192.168.0.2 has been acquired. Note also the MAC address of WAN2 (00-1D-AA-B4-B5-4A in this instance). Page 5 of 14

The hardware environment built should now be similar to that shown in the diagram below The laptop attached to the 2860 will be now able to access the ISP s router, (via the newly created interconnection) to progress configuring the DMZ interconnection. The Windows, Command Prompt display below checks the connectivity setup in this application note. The Windows laptop is connected as per the diagram, and a ping to 192.168.0.1 (the Sky router, via the DrayTek) is successful. Likewise a tracert (traceroot) shows the DrayTek Vigor router and then the Sky router. Page 6 of 14

STEP TWO RESERVE IP ADDRESS FOR DRAYTEK ROUTER ON THE ISP ROUTER Open a second laptop browser and enter the default IP address of the ISP s router (192.168.0.1, if Sky, as per this example). Login will produce the Sky router Status Summary display as shown below. In this instance showing that a connected device, Cabled, exists. This is the DrayTek 2860. The Sky router (in this test environment) is not connected to a broadband service, and thus has a status of disconnected. Selecting any option (such as SETUP, SECURITY, MAINTENANCE or ADVANCED, in the top bar. Or any of the options in the right side column, such as Change Router Password, down to Reboot Router) on the Summary Status panel will require a User name/password, entered into the following display. Page 7 of 14

The default User name is admin, the default Password is sky. Having entered a valid User name and password, selecting MAINTENANCE, and then ROUTER STATUS, which will show a more detailed version of the Summary Status. Of interest are; the ADSL Port, Network Type, which shows as MER/PPPoA and the LAN Port, MAC Address, which will be unique per Sky router (7c:03:4c:9d:0d:8c in this instance). Page 8 of 14

MER/PPPoA, refers to MAC Encapsulated Routing (MER) which means that Sky have tied the MAC address of this router to the IP address they provide on the WAN (broadband/internet) link. Such that only a Sky provided router can be used on their internet link. However, as per this application note, by setting up a DMZ from the Sky router, via a direct RJ45 cable connection into a DrayTek router, with associated configuration, allows the Sky router to pass and receive data from the DrayTek router such that the DrayTek router can provide major function on the LAN with the Sky router acting as little more than an interface to the broadband/internet. Select the ADVANCED option from the top bar, and then select the LAN IP SETUP option, which produces a display as follows. In the Address Reservation area, select ADD. Which produces the following display, which shows 192.168.0.2 (which is the DrayTek router s connection to the Sky router). Page 9 of 14

Highlight the radio button for the device you wish to reserve (a choice of one in this example), this produces the following display. Page 10 of 14

Selecting APPLY will complete this step. This step reserves the MAC of the DrayTek router s WAN2 to this IP address. Such that this IP address will always be allocated to the DrayTek (even after restarts, power off/on type events). Page 11 of 14

STEP THREE CONFIGURE DMZ ON ISP ROUTER The DrayTek router can now be set as a Default DMZ Server for the Sky router. Now, select the ADVANCED option from the top bar, and then select the WAN SETUP option, which produces a display as follows. Select (tick) the Default DMZ Server box and add the IP address (192.168.0.2 in this example), and enter 1500 in the MTU Size (in bytes): field Note: The MTU Size is blank by default, but a message panel MTU value can not be blank appears. Enter 1500, consitent with setting in other area of router configuration. Page 12 of 14

The two routers are now configured as per the objective of this application note, To configure a DrayTek 2860 router to function behind a Sky router which is providing broadband internet access. The connection between the two routers is configured as a DMZ.. It is likely, in this two router environment that the wireless/wi-fi facility of the ISP router would be disabled/turned off, and the wireless/wi-fi facility of the Draytek router is used. This avoid potential clashes/overlaps. It is also likely, in the complex in-house connectivity which may exist, that wireless/wi-fi is not provided directly by either of the two routers, but via dedicated high specification access point system such as Ruckus. The RJ45 LAN ports of the ISP s router which are not used in the DMZ configuration (i.e. those not connected to the DrayTek) will still be available for use from the ISP router. In the event of apparent internet access problems, a network device, such as a laptop, RJ45 connected to one of these ports on the ISP router could be used to identify if the perceived problem was at ISP level or within the local network, as in the environment supported from the DrayTek. Page 13 of 14

This could be seen as a check similar to the ISP asking is there telephone dial tone on a circuit where broadband/adsl problems are being experienced. Check and test to ensure all expected and previously available wired and wireless/wi-fi connectivity and services continue to be available via the new two router environment to before subsequent changes or additions are made. Page 14 of 14

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback